Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2026/03/06 12:0 a.m.0 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: jq (UTSA-2026-005841)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005841 advisory. jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function fstrflocaltime of /src/builtin.c. This issue has...

6.9CVSS5.7AI score0.00385EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-18920

Malicious code in bioql PyPI...

6.9CVSS6.3AI score0.00385EPSS
Exploits0References2
OSV
OSVadded 2025/06/19 3:15 p.m.1 views

DEBIAN-CVE-2025-49014

jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function fstrflocaltime of /src/builtin.c. This issue has been patched in commit 499c91b, no known fix version exists at time of publication...

6.9CVSS5.2AI score0.00385EPSS
Exploits0References1
OSV
OSVadded 2025/06/19 3:15 p.m.0 views

UBUNTU-CVE-2025-49014

jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function fstrflocaltime of /src/builtin.c. This issue has been patched in commit 499c91b, no known fix version exists at time of publication...

6.9CVSS5.7AI score0.00385EPSS
Exploits0References3
Cvelist
Cvelistadded 2025/06/19 3:8 p.m.8 views

CVE-2025-49014 jq heap use after free vulnerability in f_strflocaltime

jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function fstrflocaltime of /src/builtin.c. This issue has been patched in commit 499c91b, no known fix version exists at time of publication...

6.9CVSS0.00385EPSS
Exploits0References2
AlpineLinux
AlpineLinuxadded 2025/06/19 3:8 p.m.3 views

CVE-2025-49014

jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function fstrflocaltime of /src/builtin.c. This issue has been patched in commit 499c91b, no known fix version exists at time of publication...

6.9CVSS7AI score0.00385EPSS
Exploits0
CVE
CVEadded 2025/06/19 3:8 p.m.50 views

CVE-2025-49014

CVE-2025-49014 : A heap use-after-free in jq 1.8.0 affects the function f_strflocaltime in /src/builtin.c. The issue is acknowledged as patched in commit 499c91bca9d4d027833bc62787d1bb075c03680e, with no known fixed version at publication. Connected sources corroborate the vulnerability in jq and...

6.9CVSS6.7AI score0.00385EPSS
Exploits0References2
CNNVD
CNNVDadded 2025/06/19 12:0 a.m.1 views

jq 资源管理错误漏洞

jq is a lightweight and flexible command-line JSON processor from jqlang open source. A resource management error vulnerability exists in jq version 1.8.0, which stems from a post-release reuse issue in the function fstrflocaltime in the file /src/builtin.c. The vulnerability is caused by the use...

6.9CVSS6.6AI score0.00385EPSS
Exploits0References2
Rows per page
Query Builder